Jump to content
Science Forums

priyasony

Members
  • Content Count

    2
  • Joined

  • Last visited

Posts posted by priyasony

  1.  I’m trying to write a policy violation in Sailpoint. But I don’t know how to get the rights of the user who is asking a new right. I’ve tried this:

    List links1 = null;

    IdentityService service = new IdentityService(context);

    Application app1 = context.getObjectByName(Application.class, “Autres”);

    try { links1 = service.getLinks(identity, app1);

    } catch (Exception e) { System.out.println(e.getMessage());

    e.printStackTrace();

    } List DUList1 = new ArrayList();

    if(links1.size() != 0){ Object DUObj = links1.get(0).getAttribute(“DU”);

    if(DUObj != null){ if (DUObj instanceof String) DUList1.add((String) DUObj);

    else DUList1.addAll((List) DUObj);

    } }

    It was supposed to return the list of the rights that the user has and the rights that he is asking. But it doesn’t work.

  2. The requirement is to exploit an on-prem soap service from a cloud hosted micro service through Apigee layer. Why we have chosen Apigee is to simply apply the policies for XML to JSON and vice versa conversion. But Security is a big concern here. How currently the on-prem works is based on IP white-listing, but that's not possible in this case as we should whitelist the Apigee CIDR which again will be another security issue as other applications on the range can access the service.Another possible option we looked at is to route the traffic from Apigee to an HA proxy (This server comes under the service specific subnet) and then to on-prem service, so we only need to white list the ranges where HA proxy resides. We cannot change the on-prem service to accept any ApiKey, so that's also not an option. Is there any better solution do you think can be done to achieve this?

×
×
  • Create New...